[Snyk] Upgrade @apollo/client from 3.9.11 to 3.10.1

[admin-token-bot]

Snyk has created this PR to upgrade @apollo/client from 3.9.11 to 3.10.1.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 5 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2024-04-24.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	477/1000 Why? Proof of Concept exploit, CVSS 7.4	Proof of Concept
	Improper Control of Dynamically-Managed Code Resources SNYK-JS-EJS-6689533	477/1000 Why? Proof of Concept exploit, CVSS 7.4	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	477/1000 Why? Proof of Concept exploit, CVSS 7.4	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	477/1000 Why? Proof of Concept exploit, CVSS 7.4	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @apollo/client

• 3.10.1 - 2024-04-24
  

  Patch Changes

  • #11792 5876c35 Thanks @ phryneas! - AutoCleanedCache: only schedule batched cache cleanup if the cache is full (fixes #11790)

  • #11799 1aca7ed Thanks @ phryneas! - RenderPromises: use canonicalStringify to serialize variables to ensure query deduplication is properly applied even when variables are specified in a different order.

  • #11803 bf9dd17 Thanks @ phryneas! - Update the rehackt dependency to ^0.1.0

  • #11756 60592e9 Thanks @ henryqdineen! - Fix operation.setContext() type

• 3.10.0 - 2024-04-24
  

  Minor Changes

  • #11605 e2dd4c9 Thanks @ alessbell! - Adds createMockFetch utility for integration testing that includes the link chain

  • #11760 acd1982 Thanks @ alessbell! - createTestSchema now uses graphql-tools mergeResolvers to merge resolvers instead of a shallow merge.

  • #11764 f046aa9 Thanks @ alessbell! - Rename createProxiedSchema to createTestSchema and createMockFetch to createSchemaFetch.

  • #11777 5dfc79f Thanks @ alessbell! - Call createMockSchema inside createTestSchema.

  • #11774 2583488 Thanks @ alessbell! - Add ability to set min and max delay in createSchemaFetch

  • #11605 e2dd4c9 Thanks @ alessbell! - Adds proxiedSchema and createMockSchema testing utilities

  • #11465 7623da7 Thanks @ alessbell! - Add watchFragment method to the cache and expose it on ApolloClient, refactor useFragment using watchFragment.

  • #11743 78891f9 Thanks @ jerelmiller! - Remove alpha designation for queryRef.toPromise() to stabilize the API.

  • #11743 78891f9 Thanks @ jerelmiller! - Remove alpha designation for createQueryPreloader to stabilize the API.

  • #11783 440563a Thanks @ alessbell! - Moves new testing utilities to their own entrypoint, testing/experimental

  Patch Changes

  • #11757 9825295 Thanks @ phryneas! - Adjust useReadQuery wrapper logic to work with transported objects.

  • #11771 e72cbba Thanks @ phryneas! - Wrap useQueryRefHandlers in wrapHook.

  • #11754 80d2ba5 Thanks @ alessbell! - Export WatchFragmentOptions and WatchFragmentResult from main entrypoint and fix bug where this wasn't bound to the watchFragment method on ApolloClient.

• 3.10.0-rc.1 - 2024-04-15
  

  Minor Changes

  • #11760 acd1982 Thanks @ alessbell! - createTestSchema now uses graphql-tools mergeResolvers to merge resolvers instead of a shallow merge.

  • #11764 f046aa9 Thanks @ alessbell! - Rename createProxiedSchema to createTestSchema and createMockFetch to createSchemaFetch.

  • #11777 5dfc79f Thanks @ alessbell! - Call createMockSchema inside createTestSchema.

  • #11774 2583488 Thanks @ alessbell! - Add ability to set min and max delay in createSchemaFetch

  • #11783 440563a Thanks @ alessbell! - Moves new testing utilities to their own entrypoint, testing/experimental

  Patch Changes

  • #11757 9825295 Thanks @ phryneas! - Adjust useReadQuery wrapper logic to work with transported objects.

  • #11771 e72cbba Thanks @ phryneas! - Wrap useQueryRefHandlers in wrapHook.

  • #11754 80d2ba5 Thanks @ alessbell! - Export WatchFragmentOptions and WatchFragmentResult from main entrypoint and fix bug where this wasn't bound to the watchFragment method on ApolloClient.

• 3.10.0-rc.0 - 2024-04-02
  

  Minor Changes

  • #11605 e2dd4c9 Thanks @ alessbell! - Adds createMockFetch utility for integration testing that includes the link chain

  • #11605 e2dd4c9 Thanks @ alessbell! - Adds proxiedSchema and createMockSchema testing utilities

  • #11743 78891f9 Thanks @ jerelmiller! - Remove alpha designation for queryRef.toPromise() to stabilize the API.

  • #11743 78891f9 Thanks @ jerelmiller! - Remove alpha designation for createQueryPreloader to stabilize the API.

• 3.10.0-alpha.1 - 2024-03-18
• 3.9.11 - 2024-04-10
  

  Patch Changes

  • #11769 04132af Thanks @ jerelmiller! - Fix an issue where using skipToken or the skip option with useSuspenseQuery in React's strict mode would perform a network request.

from @apollo/client GitHub release notes

Commit messages

Package name: @apollo/client

• 7f53db9 Version Packages (#11810)
• 1aca7ed `RenderPromises`: use `canonicalStringify` to serialize data, use `Trie` (#11799)
• 60592e9 Fix operation.setContext() type (#11756)
• 5876c35 AutoCleanedCache: only schedule batched cache cleanup if the cache is full (#11792)
• bf9dd17 Update the `rehackt` dependency to `^0.1.0` (#11803)
• 5f65439 Version Packages (#11809)
• 0fbd073 Merge pull request #11698 from apollographql/release-3.10
• 004b176 Exit prerelease mode
• 0843bf4 Testing utility docs (#11805)
• a26aacc add return type to `withinDOM` implementation (#11802)
• 31c3df4 Require sha when creating snapshot releases on forks (#11794)
• f6de059 Update ROADMAP.md
• 892b6c4 chore: update static-typing.md to add "graphql" as install dependency (#11786)
• b74a76b Merge pull request #11793 from apollographql/docs/update-overview
• d089826 Merge branch 'main' into docs/update-overview
• 45f7501 fix: initialFetchPolicy instead initialPolicy (#11797)
• e13cbb8 DOC-89: Reference GraphOS router features in overview
• f0724d7 chore: update alessbell/pull-request-comment-branch to v2.1.0 (#11788)
• a4c89f0 Version Packages (rc) (#11755)
• acd1982 feat: deep merge resolvers (#11760)
• 2583488 Accept min and max delay in `createSchemaFetch` options (#11774)
• 440563a Move new testing utilities to their own entrypoint (#11783)
• 65b4ba9 Modify release date
• cde7e24 chore: update api-report-testing_core.md and api-report-testing.md

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[docs-builder-bot]

✨ Staging URL: https://docs-atlas-staging.mongodb.com/realm/docsworker-xlarge/snyk-upgrade-b14e001d8b9b6256950d3aba52e2a828/

🪵 Logs

• job log: 1dfc3ba879909a7a48f903947a4f34dd93a62864